54 matches found
Announcing New CB ThreatHunter App for Phantom
Today’s cybersecurity landscape is facing multiple challenges - and not just from cyber attackers. Security teams are understaffed and struggling to find the talent they need to complete their day-to-day tasks, with limited visibility across their security stack. To address these challenges, SOC...
Four Steps to Becoming a Threat Hunter
Roles in cybersecurity have evolved to now include the title of “Threat Hunter”. It sounds cool, but I’m sure many of you are wondering what it really means and how it is different from the job you’ve been doing. Up until now, most of us have performed a job more akin to “Threat Wrangler”. Once...
Free Cynet Threat Assessment for Mid-sized and Large Organizations
If you cannot see what’s happening in your network, your ability to make smart security decisions will suffer. Many vendors offer threat assessment options, but they usually require an investment of time and resources. One vendor out there – Cynet – is offering a no-cost threat assessment to...
Carbon Black + VMware at RSA2019: Working Together to Secure the Digital Workspace
VMware and Carbon Black have a strong history of working together to fundamentally change the model for securing the virtualized data center, a concept that is resounding with attendees here at RSA2019 in San Francisco. A little more than a year ago, we announced a jointly developed, integrated...
Learn How XDR Can Take Breach Protection Beyond Endpoint Security
How do you know whether an attacker has infiltrated your network? Can you really rely on an Endpoint Detection and Response EDR solution to be your go-to technology for identifying security breaches? Endpoint detection and response EDR platform has been an important technology to detect...
How CB LiveOps Helps with Vulnerability Assessment
Security and IT Operations teams often have no reliable way to assess the current state of endpoints across their enterprise, leading to increased risk of breach, inability to make informed remediation decisions, and unnecessary spending on infrastructure maintenance. A real-time endpoint query a...
CISO series: Strengthen your organizational immune system with cybersecurity hygiene
One of the things I love about my job is the time I get to spend with security professionals, learning firsthand about the challenges of managing security strategy and implementation day to day. There are certain themes that come up over and over in these conversations. My colleague Ken Malcolmso...
Vulnerability hunting with Semmle QL, part 1
Previously on this blog, we’ve talked about how MSRC automates the root cause analysis of vulnerabilities reported and found. After doing this, our next step is variant analysis: finding and investigating any variants of the vulnerability. It’s important that we find all such variants and patch...
2018 Cyberthreat Defense Report: Where IT Security Is Going
What keeps you awake at night? We asked IT security professionals the same question and found that these issues are top of mind: malware and spear phishing, securing mobile devices, employee security awareness and new technologies that detect threats capable of bypassing traditional signature-bas...
Excerpts from Building a High Speed SOC: Introduction
Carbon Black recently published an in-depth guide on what it takes to develop a "high speed" security operations center, or SOC; this is an excerpt from that guide, which you can find here. For more information on building high speed SOCs, including how to eliminate the "response gap," check out...
5 Steps to a High-Speed SOC
Your endpoints don’t just live within the safety of your corporate network—they’re out in the wild exposed to millions of new threats every day. With non-malware attacks on the rise that are even harder to detect than traditional malware, security professionals are realizing it is no longer a...
Get a Single View of WAF Events with the Imperva AppSecurity View App for Splunk Enterprise
Enterprises are adopting a hybrid infrastructure model to take advantage of rapid deployment of cloud-based services and higher computing power. A compilation of analyst predictions by SecureWorks, shows that the cloud continues to gain momentum as organizations embrace and benefit from new ways ...
Yahoo data leak by Virus_Hima, Why do we need a proactive security?
In November I was contacted for first time by the Egyptian Hacker named ViruSHimA who announced me to have hacked into Adobe servers and leaked private data. The hacker violated Adobe servers gaining full access and dumping the entire database with more of 150,000 emails and hashed passwords of...
Yahoo data leak by Virus_Hima, Why do we need a proactive security?
In November I was contacted for first time by the Egyptian Hacker named ViruSHimA who announced me to have hacked into Adobe servers and leaked private data. The hacker violated Adobe servers gaining full access and dumping the entire database with more of 150,000 emails and hashed passwords of...